Manualshelf

Specifications

ManualsBrandsBlack Box ManualsComputer equipmentDTX5000
71727374757677787980
Chapter 8 Authentication Services
3. Click the name of the TACACS+ service. The side navigation bar will change to include the name of the TACACS+
service at the top and, below the name, the information you may define.
4. Click Connection in the side navigation bar. The Authentication Service Connection Settings - TACACS+ window
will open.
a. Type a 1-64 character name for the TACACS+ authentication service.
b. Type the address of the TACACS+ host in dot notation format (xxx.xxx.xxx.xxx) or type the DNS host name in
the Server Address field.
c. Type the number of the port (from 1-65535) for connecting to the TACACS+ host in the Port Number field. The
default is port 49.
d. Click Save.
5. To change the authentication type and/or shared secret, click Settings in the side navigation bar. The Authentication
Service Authentication Settings - TACACS+ window will open.
a. Select the authentication type from the Authentication Type menu.
PAP - Password Authentication Protocol
CHAP - Challenge Handshake Authentication Protocol (default)
MS-CHAP - Microsoft Challenge Handshake Authentication Protocol
b. In the Shared Secret field, type the shared secret, which is a password protected field. (For the shared secret,
Microsoft’s implementation allows up to 128 ASCII characters and Cisco’s implementation allows up to 32 ASCII
characters; other servers may have a different limit.)
NOTE: If you change the authentication type, you will be required to enter the shared secret.
c. Re-enter the shared secret in the Confirm Shared Secret field.
d. Click Save.
6. To change the group authorization settings, click Group Authorization in the side navigation bar.
The Method field will display the group authorization method configured when the TACACS+ authentication
service was added. This field cannot be changed.
a. In the Service field, type the appropriate TACACS+ service.
If TACACS+ privilege level attribute is the method, the default value is shell.
If TACACS+ custom attribute for group names is the method, the default value is raccess.
b. If the TACACS+ service requires a protocol for authorization requests, type the protocol in the Protocol field.
c. In the Attribute Name field, type the attribute name that the DTX Control server will receive after an authorization
request.
If TACACS+ privilege level attribute is the method, the default value is priv-lvl.
If TACACS+ custom attribute for group names is the method, the default value is group_name.
d. Click Save.
7. Click Close. The User Authentication Services dialog box will appear.
8.2 RSA SecurID external authentication service
When an RSA SecurID external authentication service is added, the DTX 5000-CTL Management Appliance obtains user
authentication information and relays it to the RSA Authentication Manager. The RSA Authentication Manager’s
Page 71 724-746-5500 | blackbox.com